HCE2-SA-2022-0059 Critical HCE 2.0 Security Fix(es): Protobuf-c v1.4.0 was discovered to contain an invalid arithmetic shift via the function parse_tag_and_wiretype in protobuf-c/protobuf-c.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via unspecified vectors. (CVE-2022-33070) zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib source code but may be unable to call inflateGetHeader (e.g., see the nodejs/node reference). (CVE-2022-37434) zlib before 1.2.12 allows memory corruption when deflating (i.e., when compressing) if the input has many distant matches. (CVE-2018-25032) HCE 2.0 sudo-1.9.8p2-2.r5.hce2.aarch64.rpm sudo-devel-1.9.8p2-2.r5.hce2.aarch64.rpm sudo-help-1.9.8p2-2.r5.hce2.noarch.rpm sudo-1.9.8p2-2.r5.hce2.x86_64.rpm sudo-devel-1.9.8p2-2.r5.hce2.x86_64.rpm